[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZPI0EPJRJwGkbPQ3nKNC1EQyo2qVW5jZ1svIJu65CZg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":36,"analysis":74,"fingerprints":670},"reservation","Reservation","1.0","Navotar","https:\u002F\u002Fprofiles.wordpress.org\u002Fnavotarinc\u002F","\u003Cp>Navotar Car Rental Reservation Plugin can be easily plugged into your website.\u003C\u002Fp>\n\u003Cp>Add the Car Rental Reservation Plugin directly into your website and start getting online reservation from your customers.\u003C\u002Fp>\n\u003Cp>Your customers can simply visit your website and select the vehicle they need and fill in the required information and submit. The reservation made will be sent to your car rental software account with Navotar right away.\u003C\u002Fp>\n\u003Cp>Main Features\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Reserve in just 4 clicks – With Navotar’s car rental booking plugin, your customers can make reservations in just 4 steps. \u003C\u002Fli>\n\u003Cli>Synced real time – The booking plugin connected with Navotar’s Car Rental Software in real time hence there won’t be any duplication of booking.\u003C\u002Fli>\n\u003Cli>Mobile Friendly Design – Navotar’s car rental reservation plugin is mobile friendly. The screen would alter automatically based on the device you use. \u003C\u002Fli>\n\u003Cli>Secure Payment Processing – You can start getting payments from Navotar’s online reservation plugin. It is 100% secure. \u003C\u002Fli>\n\u003Cli>Email Confirmation – Customers will be notified once the reservations are made.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Check our car rental software demo to get a better idea about Navotar’s Car Rental Software – https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=PvZD3f6-Ycg&feature=youtu.be\u003C\u002Fp>\n","Navotar Car Rental Reservation Plugin enables you to get your car rental reservations directly from your website which is synced real time with the Ca &hellip;",100,2202,0,"2019-12-19T11:21:00.000Z","5.2.24","4.9","5.6",[19,20,21,22,23],"car-rental-reservation-plugin","car-rental-software","online-car-rental-plugin","online-reservation-module","wordpress-car-rental-plugin","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Freservation.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},"navotarinc",1,30,84,"2026-04-04T06:19:51.004Z",[37,56],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":13,"num_ratings":13,"last_updated":47,"tested_up_to":48,"requires_at_least":49,"requires_php":24,"tags":50,"homepage":54,"download_link":55,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"ibexrentacar","Ibexrentacar","1.7","ibexestudio","https:\u002F\u002Fprofiles.wordpress.org\u002Fibexestudio\u002F","\u003Cblockquote>\n\u003Cp>IMPORTANT : Ibexrentacar Plugin for WordPress requires subscription to the Ibexrentacar platform.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>The best car rental software solutions\u003C\u002Fh4>\n\u003Ch4>Business intelligence\u003C\u002Fh4>\n\u003Cp>Obtain the necessary data to drive the set of strategies and all the relevant aspects to enhance your business. Ibexrentacar provides you with information in real time (Booking, contracts, billing, fleet control, stock control, vehicle pickup and return management, warehouses, CRM client, etc..) so you’ll make the best decisions.\u003C\u002Fp>\n\u003Cp>Our web solution allows you to run your business from a single point in a coordinated manner. All bookings are stored and updated, taking stock control and managing all administrative operations of your business from one site.\u003C\u002Fp>\n\u003Ch4>Online booking engine\u003C\u002Fh4>\n\u003Cp>Ibexrentacar widget is an embeddable booking engine that works with any website, it’s completely customizable and, following an user-centered design process, improves your client’s user experience (UX). Engineered to improve your online marketing strategy, optimize your campaigns and maximize your profits by providing your customers with promotions on additional products, recommendations on vehicles and tracing each one of your sales, so you can analyze and boost your ROI.\u003C\u002Fp>\n\u003Ch4>Cloud, 24\u002F7\u003C\u002Fh4>\n\u003Cp>100% cloud computing management software, it is a low cost and quick installation platform. A 24\u002F7 service ensures that your business is always up and running, it includes automatic updates and a management system provided with state-of-the-art technologies in the market.\u003C\u002Fp>\n\u003Cp>Ibexrentacar is a resizable platform according to the needs of your business.\u003C\u002Fp>\n\u003Ch4>Affiliates\u003C\u002Fh4>\n\u003Cp>Expand your car rental company, it doesn’t have to be limited to a single agency. Connect your Ibexrentacar with your affiliates (hotels, travel agencies, tour operators) and with all your online agents (brokers, search engines, social networking, mobile applications).\u003C\u002Fp>\n\u003Cp>With our embedded widget and XML Webservice system, you will be providing your agents with the tools that will enhance your online sales.\u003C\u002Fp>\n\u003Cp>You can create your own affiliate network, manage your bookings and control who and what sells each affiliate, at any time, taking control of corresponding bonuses and fees.\u003C\u002Fp>\n\u003Ch4>Mobile APP\u003C\u002Fh4>\n\u003Cp>A mobile booking engine that provides your customers with several features to enhance their renting experience such as roadside assistance, local points of interest, save vehicle’s position in a parking lot, notice of arrival at the airport, direct contact with you, etc.\u003C\u002Fp>\n\u003Cp>Currently 30% of online bookings are being made from mobile devices, do not miss the opportunity to increase your visibility by offering your own car rental mobile app in the Google and Apple Stores..\u003C\u002Fp>\n\u003Cp>More information: \u003Ca href=\"http:\u002F\u002Fwww.ibexrentacar.com\u002Fen\" rel=\"nofollow ugc\">Ibexrentacar\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"http:\u002F\u002Fwww.ibexrentacar.com\u002Fen\u002Ftry-it-now-car-rental-software\u002F\" rel=\"nofollow ugc\">TRY IT NOW\u003C\u002Fa>\u003C\u002Fp>\n","Turn your WordPress blog into a full online booking system connected to your Ibexrentacar. Technology and innovation for your car rental company.",10,2904,"2021-01-05T17:10:00.000Z","5.6.17","3.6.1",[51,20,52,38,53],"alquiler-coches","fleet","rent-a-car","http:\u002F\u002Fwww.ibexrentacar.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fibexrentacar.1.7.zip",{"slug":57,"name":58,"version":59,"author":60,"author_profile":61,"description":62,"short_description":63,"active_installs":45,"downloaded":64,"rating":11,"num_ratings":65,"last_updated":66,"tested_up_to":48,"requires_at_least":49,"requires_php":67,"tags":68,"homepage":72,"download_link":73,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"sofcar-for-wp","Sofcar for WP","1.0.1","SofcarTeam","https:\u002F\u002Fprofiles.wordpress.org\u002Fsofcar\u002F","\u003Cblockquote>\n\u003Cp>We are with you, we offer you solutions : Due to the spread of COVID-19 and the extraordinary circumstances that we are currently suffering both in Spain and in the rest of the world, digital tools have become essential so that your employees can continue to maintain their professional activity at a safe distance.\u003Cbr \u002F>\n  We want to be part of the solution, and for this reason we have decided to offer Sofcar, an online booking cloud system for rental companies of all types of vehicles completely free of charge and indefinitely. It is a fully operational solution in beta mode to maintain your internal management and increase your bookings across multiple channels.\u003Cbr \u002F>\n  Together we will face it.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>Online booking system for rental companies\u003C\u002Fh4>\n\u003Cp>Sofcar is a customizable a car rental booking engine embedded to your WordPress page that makes your car rental business and booking website easy to handle.\u003Cbr \u002F>\nTurn your WordPress blog into a full online booking system connected to your Sofcar. Technology and innovation for your car rental company.\u003C\u002Fp>\n\u003Ch4>Start increasing your direct bookings\u003C\u002Fh4>\n\u003Cp>Sofcar allows you to quickly manage your rental business by providing you with the management, control and booking tools so that you have a real-time view of the state of your business and can make the best decisions to fulfill your conversions.\u003C\u002Fp>\n\u003Ch4>Control Dashboard\u003C\u002Fh4>\n\u003Cp>Sofcar provides you with a variety of tools to help you set up and manage your business. You can find everything you need to display your models online, manage your bookings, process payments, define the availability of your fleet, your pick-up and drop-off locations, customize rates, extras, supplements, customers and notifications, among many other features.\u003C\u002Fp>\n\u003Ch4>Integrable booking engine\u003C\u002Fh4>\n\u003Cp>The Sofcar plugin for WordPress offers multiple layout of its car rental booking engine. Its search engine offers different layout to display one or several featured models, all the fleet, or a smart version of the search engine with minimum visual impact in the home page.\u003C\u002Fp>\n\u003Cp>The online booking widget is embedded into your WordPress page using shortcodes and it’s 100% design customization ready, resulting in a total transparency to your brand’s touch&feel and usability to your customers.\u003C\u002Fp>\n\u003Ch4>Control and reporting\u003C\u002Fh4>\n\u003Cp>Its fastest and most efficient management; daily reports, fleet control and custom reports.\u003C\u002Fp>\n\u003Ch4>Safe environment\u003C\u002Fh4>\n\u003Cp>Enjoy the peace of mind that all your data and your customers are protected.\u003C\u002Fp>\n\u003Ch4>We are with you, we offer you solutions\u003C\u002Fh4>\n\u003Cp>Due to the spread of COVID-19 and the extraordinary circumstances that we are currently suffering both in Spain and in the rest of the world, digital tools have become essential so that your employees can continue to maintain their professional activity at a safe distance.\u003C\u002Fp>\n\u003Cp>We want to be part of the solution, and for this reason we have decided to offer Sofcar, an online booking cloud system for rental companies of all types of vehicles completely free of charge and indefinitely. It is a fully operational solution in beta mode to maintain your internal management and increase your bookings across multiple channels.\u003C\u002Fp>\n\u003Cp>Together we will face it.\u003C\u002Fp>\n\u003Ch3>Feedback and support\u003C\u002Fh3>\n\u003Cp>We would be happy to receive your feedback to improve this plugin.\u003Cbr \u002F>\nPlease let we know through \u003Ca href=\"https:\u002F\u002Fwww.sofcar.com\u002Fsupport\" rel=\"nofollow ugc\">help center\u003C\u002Fa>\u003Cbr \u002F>\nWe hope it is useful for you! Thanks!\u003C\u002Fp>\n","Sofcar is a customizable car rental booking engine with online payment gateways, automatic email notifications, fully compatible with all WordPress Th &hellip;",2552,3,"2021-01-09T18:05:00.000Z","7.0",[20,69,70,53,71],"free-fleet-management","onlien-booking-engine","sofcar","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsofcar-for-wp\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsofcar-for-wp.1.0.1.zip",{"attackSurface":75,"codeSignals":228,"taintFlows":478,"riskAssessment":662,"analyzedAt":669},{"hooks":76,"ajaxHandlers":149,"restRoutes":215,"shortcodes":216,"cronEvents":226,"entryPointCount":227,"unprotectedCount":13},[77,83,86,89,91,94,99,105,109,113,117,121,124,128,132,135,139,143,146],{"type":78,"name":79,"callback":80,"file":81,"line":82},"action","admin_init","NTRAregisterMyCoolPluginSettings","admin\\setting\\options.php",7,{"type":78,"name":79,"callback":84,"file":81,"line":85},"NTRAregisterLayoutSettings",8,{"type":78,"name":79,"callback":87,"file":81,"line":88},"NTRAregisterFieldSettings",9,{"type":78,"name":79,"callback":90,"file":81,"line":45},"NTRAregisterGeneralSettings",{"type":78,"name":79,"callback":92,"file":81,"line":93},"NTRAregisterTermsSettings",11,{"type":78,"name":95,"callback":96,"file":97,"line":98},"init","app_output_buffer","include\\login.php",110,{"type":78,"name":100,"callback":101,"priority":102,"file":103,"line":104},"http_api_curl","sar_custom_curl_timeout",9999,"include\\summary.php",5,{"type":106,"name":107,"callback":108,"priority":102,"file":103,"line":93},"filter","http_request_timeout","sar_custom_http_request_timeout",{"type":106,"name":110,"callback":111,"priority":102,"file":103,"line":112},"http_request_args","sar_custom_http_request_args",16,{"type":78,"name":95,"callback":114,"file":115,"line":116},"NTRAfileInclude","reservation.php",37,{"type":78,"name":118,"callback":119,"file":115,"line":120},"wp_head","NTRAhookInHeader",38,{"type":78,"name":95,"callback":122,"file":115,"line":123},"NTRAfrontendFiles",39,{"type":78,"name":125,"callback":126,"file":115,"line":127},"admin_menu","NTRAaddAdminMenu",40,{"type":78,"name":129,"callback":130,"file":115,"line":131},"wp_enqueue_scripts","NTRAaddFrontendScripts",41,{"type":78,"name":79,"callback":133,"file":115,"line":134},"NTRAloadAdminStyle",42,{"type":106,"name":136,"callback":137,"file":115,"line":138},"template_include","NTRAcontactPageTemplate",43,{"type":78,"name":140,"callback":141,"file":115,"line":142},"admin_enqueue_scripts","NTRAcstmCssAndJs",44,{"type":78,"name":140,"callback":144,"file":115,"line":145},"NTRAadminUrl",45,{"type":78,"name":118,"callback":147,"file":115,"line":148},"NTRAmyPrintCustomStyle",46,[150,155,157,160,162,165,166,169,170,173,174,176,178,181,182,185,186,190,191,193,194,197,198,201,203,206,207,210,211,214],{"action":151,"nopriv":152,"callback":151,"hasNonce":152,"hasCapCheck":153,"file":154,"line":65},"NTRAGetCountry",true,false,"include\\country.php",{"action":151,"nopriv":153,"callback":151,"hasNonce":152,"hasCapCheck":153,"file":154,"line":156},4,{"action":158,"nopriv":152,"callback":158,"hasNonce":152,"hasCapCheck":153,"file":154,"line":159},"NTRAGetState",55,{"action":158,"nopriv":153,"callback":158,"hasNonce":152,"hasCapCheck":153,"file":154,"line":161},56,{"action":163,"nopriv":152,"callback":163,"hasNonce":152,"hasCapCheck":153,"file":164,"line":156},"NTRAcreateReservtion","include\\createReservation.php",{"action":163,"nopriv":153,"callback":163,"hasNonce":152,"hasCapCheck":153,"file":164,"line":104},{"action":167,"nopriv":152,"callback":167,"hasNonce":152,"hasCapCheck":153,"file":168,"line":156},"NTRAreservationGetHours","include\\get_hour.php",{"action":167,"nopriv":153,"callback":167,"hasNonce":152,"hasCapCheck":153,"file":168,"line":104},{"action":171,"nopriv":152,"callback":171,"hasNonce":152,"hasCapCheck":153,"file":172,"line":65},"NTRALocationChecking","include\\location.php",{"action":171,"nopriv":153,"callback":171,"hasNonce":152,"hasCapCheck":153,"file":172,"line":156},{"action":175,"nopriv":152,"callback":175,"hasNonce":152,"hasCapCheck":153,"file":172,"line":161},"NTRALocationdropoff",{"action":175,"nopriv":153,"callback":175,"hasNonce":152,"hasCapCheck":153,"file":172,"line":177},57,{"action":179,"nopriv":152,"callback":179,"hasNonce":152,"hasCapCheck":152,"file":97,"line":180},"NTRAreservationLogin",2,{"action":179,"nopriv":153,"callback":179,"hasNonce":152,"hasCapCheck":152,"file":97,"line":65},{"action":183,"nopriv":152,"callback":183,"hasNonce":152,"hasCapCheck":153,"file":184,"line":156},"NTRAmisCharges","include\\mscharges.php",{"action":183,"nopriv":153,"callback":183,"hasNonce":152,"hasCapCheck":153,"file":184,"line":104},{"action":187,"nopriv":152,"callback":187,"hasNonce":152,"hasCapCheck":153,"file":188,"line":189},"NTRAreservationPromo","include\\promocode.php",6,{"action":187,"nopriv":153,"callback":187,"hasNonce":152,"hasCapCheck":153,"file":188,"line":82},{"action":192,"nopriv":152,"callback":192,"hasNonce":152,"hasCapCheck":153,"file":188,"line":34},"NTRApromo",{"action":192,"nopriv":153,"callback":192,"hasNonce":152,"hasCapCheck":153,"file":188,"line":26},{"action":195,"nopriv":152,"callback":195,"hasNonce":152,"hasCapCheck":153,"file":196,"line":65},"NTRAreservationReserve","include\\reserve.php",{"action":195,"nopriv":153,"callback":195,"hasNonce":152,"hasCapCheck":153,"file":196,"line":156},{"action":199,"nopriv":152,"callback":199,"hasNonce":152,"hasCapCheck":153,"file":103,"line":200},"NTRAreservationSummary",22,{"action":199,"nopriv":153,"callback":199,"hasNonce":152,"hasCapCheck":153,"file":103,"line":202},23,{"action":204,"nopriv":152,"callback":204,"hasNonce":152,"hasCapCheck":153,"file":205,"line":65},"NTRAreservationTerms","include\\terms.php",{"action":204,"nopriv":153,"callback":204,"hasNonce":152,"hasCapCheck":153,"file":205,"line":156},{"action":208,"nopriv":152,"callback":208,"hasNonce":152,"hasCapCheck":153,"file":209,"line":65},"NTRAlistVichele","include\\vehicle.php",{"action":208,"nopriv":153,"callback":208,"hasNonce":152,"hasCapCheck":153,"file":209,"line":156},{"action":212,"nopriv":152,"callback":212,"hasNonce":152,"hasCapCheck":153,"file":213,"line":156},"NTRAvicheleList","include\\vicheleList.php",{"action":212,"nopriv":153,"callback":212,"hasNonce":152,"hasCapCheck":153,"file":213,"line":104},[],[217,222],{"tag":218,"callback":219,"file":220,"line":221},"navotarBoxSearch","NTRAboxLayout","include\\shortcode.php",243,{"tag":223,"callback":224,"file":220,"line":225},"navotarRectSearch","NTRAretBox",372,[],32,{"dangerousFunctions":229,"sqlUsage":230,"outputEscaping":232,"fileOperations":13,"externalRequests":475,"nonceChecks":446,"capabilityChecks":476,"bundledLibraries":477},[],{"prepared":65,"raw":13,"locations":231},[],{"escaped":233,"rawEcho":234,"locations":235},564,134,[236,239,241,243,245,248,251,253,255,257,259,261,263,265,266,268,270,272,274,276,278,280,282,284,286,287,289,290,292,293,295,296,298,299,300,301,302,303,305,306,307,308,309,310,311,313,315,317,318,320,321,323,324,326,327,328,329,331,333,334,336,338,339,341,343,345,347,349,350,352,353,355,357,358,360,361,363,365,367,369,371,373,375,377,379,381,383,385,387,389,391,393,395,397,399,401,403,405,407,409,411,413,415,416,418,420,422,424,426,428,430,432,434,435,436,438,441,443,444,447,449,450,452,454,456,458,460,462,464,466,468,471,472,473],{"file":237,"line":202,"context":238},"admin\\setting\\layout.php","raw output",{"file":237,"line":240,"context":238},33,{"file":237,"line":242,"context":238},87,{"file":237,"line":244,"context":238},94,{"file":246,"line":247,"context":238},"admin\\setting\\term_editor.php",21,{"file":249,"line":250,"context":238},"css\\styelecss.php",119,{"file":249,"line":252,"context":238},120,{"file":249,"line":254,"context":238},126,{"file":249,"line":256,"context":238},159,{"file":249,"line":258,"context":238},248,{"file":249,"line":260,"context":238},326,{"file":249,"line":262,"context":238},327,{"file":249,"line":264,"context":238},328,{"file":154,"line":134,"context":238},{"file":154,"line":267,"context":238},95,{"file":164,"line":269,"context":238},274,{"file":168,"line":271,"context":238},81,{"file":168,"line":273,"context":238},88,{"file":168,"line":275,"context":238},146,{"file":168,"line":277,"context":238},179,{"file":172,"line":279,"context":238},49,{"file":172,"line":281,"context":238},103,{"file":184,"line":283,"context":238},69,{"file":184,"line":285,"context":238},77,{"file":184,"line":285,"context":238},{"file":184,"line":288,"context":238},78,{"file":184,"line":288,"context":238},{"file":184,"line":291,"context":238},79,{"file":184,"line":291,"context":238},{"file":184,"line":294,"context":238},80,{"file":184,"line":294,"context":238},{"file":184,"line":297,"context":238},82,{"file":184,"line":297,"context":238},{"file":184,"line":34,"context":238},{"file":184,"line":26,"context":238},{"file":184,"line":26,"context":238},{"file":184,"line":242,"context":238},{"file":184,"line":304,"context":238},91,{"file":184,"line":304,"context":238},{"file":184,"line":244,"context":238},{"file":184,"line":244,"context":238},{"file":184,"line":267,"context":238},{"file":184,"line":267,"context":238},{"file":184,"line":11,"context":238},{"file":184,"line":312,"context":238},106,{"file":184,"line":314,"context":238},107,{"file":184,"line":316,"context":238},114,{"file":184,"line":316,"context":238},{"file":184,"line":319,"context":238},115,{"file":184,"line":319,"context":238},{"file":184,"line":322,"context":238},116,{"file":184,"line":322,"context":238},{"file":184,"line":325,"context":238},117,{"file":184,"line":325,"context":238},{"file":184,"line":250,"context":238},{"file":184,"line":250,"context":238},{"file":184,"line":330,"context":238},121,{"file":184,"line":332,"context":238},122,{"file":184,"line":332,"context":238},{"file":184,"line":335,"context":238},124,{"file":184,"line":337,"context":238},127,{"file":184,"line":337,"context":238},{"file":184,"line":340,"context":238},128,{"file":184,"line":342,"context":238},132,{"file":184,"line":344,"context":238},138,{"file":184,"line":346,"context":238},139,{"file":184,"line":348,"context":238},154,{"file":188,"line":285,"context":238},{"file":188,"line":351,"context":238},178,{"file":196,"line":98,"context":238},{"file":103,"line":354,"context":238},365,{"file":209,"line":356,"context":238},62,{"file":213,"line":342,"context":238},{"file":213,"line":359,"context":238},135,{"file":213,"line":344,"context":238},{"file":213,"line":362,"context":238},142,{"file":213,"line":364,"context":238},145,{"file":213,"line":366,"context":238},148,{"file":213,"line":368,"context":238},152,{"file":213,"line":370,"context":238},157,{"file":213,"line":372,"context":238},163,{"file":213,"line":374,"context":238},177,{"file":213,"line":376,"context":238},186,{"file":213,"line":378,"context":238},191,{"file":213,"line":380,"context":238},195,{"file":213,"line":382,"context":238},208,{"file":213,"line":384,"context":238},210,{"file":213,"line":386,"context":238},211,{"file":213,"line":388,"context":238},216,{"file":213,"line":390,"context":238},218,{"file":213,"line":392,"context":238},219,{"file":213,"line":394,"context":238},224,{"file":213,"line":396,"context":238},226,{"file":213,"line":398,"context":238},227,{"file":213,"line":400,"context":238},234,{"file":213,"line":402,"context":238},236,{"file":213,"line":404,"context":238},237,{"file":213,"line":406,"context":238},244,{"file":213,"line":408,"context":238},246,{"file":213,"line":410,"context":238},247,{"file":213,"line":412,"context":238},260,{"file":213,"line":414,"context":238},272,{"file":213,"line":269,"context":238},{"file":213,"line":417,"context":238},275,{"file":213,"line":419,"context":238},278,{"file":213,"line":421,"context":238},282,{"file":213,"line":423,"context":238},287,{"file":213,"line":425,"context":238},291,{"file":213,"line":427,"context":238},304,{"file":213,"line":429,"context":238},305,{"file":213,"line":431,"context":238},306,{"file":213,"line":433,"context":238},307,{"file":115,"line":159,"context":238},{"file":115,"line":161,"context":238},{"file":115,"line":437,"context":238},67,{"file":439,"line":440,"context":238},"templates\\listing.php",48,{"file":439,"line":442,"context":238},73,{"file":439,"line":398,"context":238},{"file":445,"line":446,"context":238},"templates\\mis-charges.php",20,{"file":448,"line":366,"context":238},"templates\\summary.php",{"file":448,"line":366,"context":238},{"file":448,"line":451,"context":238},253,{"file":448,"line":453,"context":238},344,{"file":448,"line":455,"context":238},345,{"file":448,"line":457,"context":238},471,{"file":448,"line":459,"context":238},472,{"file":448,"line":461,"context":238},559,{"file":448,"line":463,"context":238},560,{"file":448,"line":465,"context":238},656,{"file":448,"line":467,"context":238},668,{"file":469,"line":470,"context":238},"templates\\term-condition.php",24,{"file":469,"line":279,"context":238},{"file":469,"line":159,"context":238},{"file":469,"line":474,"context":238},60,17,12,[],[479,496,504,515,523,579,611,624,632,649],{"entryPoint":480,"graph":481,"unsanitizedCount":13,"severity":495},"NTRAreservationGetHours (include\\get_hour.php:6)",{"nodes":482,"edges":493},[483,487],{"id":484,"type":485,"label":486,"file":168,"line":93},"n0","source","$_REQUEST",{"id":488,"type":489,"label":490,"file":168,"line":491,"wp_function":492},"n1","sink","wp_remote_get() [SSRF]",50,"wp_remote_get",[494],{"from":484,"to":488,"sanitized":152},"low",{"entryPoint":497,"graph":498,"unsanitizedCount":13,"severity":495},"\u003Cget_hour> (include\\get_hour.php:0)",{"nodes":499,"edges":502},[500,501],{"id":484,"type":485,"label":486,"file":168,"line":93},{"id":488,"type":489,"label":490,"file":168,"line":491,"wp_function":492},[503],{"from":484,"to":488,"sanitized":152},{"entryPoint":505,"graph":506,"unsanitizedCount":13,"severity":495},"NTRAmisCharges (include\\mscharges.php:7)",{"nodes":507,"edges":513},[508,510],{"id":484,"type":485,"label":509,"file":184,"line":247},"$_REQUEST (x4)",{"id":488,"type":489,"label":511,"file":184,"line":288,"wp_function":512},"echo() [XSS]","echo",[514],{"from":484,"to":488,"sanitized":152},{"entryPoint":516,"graph":517,"unsanitizedCount":13,"severity":495},"\u003Cmscharges> (include\\mscharges.php:0)",{"nodes":518,"edges":521},[519,520],{"id":484,"type":485,"label":509,"file":184,"line":247},{"id":488,"type":489,"label":511,"file":184,"line":288,"wp_function":512},[522],{"from":484,"to":488,"sanitized":152},{"entryPoint":524,"graph":525,"unsanitizedCount":13,"severity":495},"\u003Clisting> (templates\\listing.php:0)",{"nodes":526,"edges":570},[527,529,530,534,536,540,542,546,548,551,553,556,558,562,564,568],{"id":484,"type":485,"label":528,"file":439,"line":476},"$_POST['vtype']",{"id":488,"type":489,"label":511,"file":439,"line":476,"wp_function":512},{"id":531,"type":485,"label":532,"file":439,"line":533},"n2","$_POST['pivkupdate']",13,{"id":535,"type":489,"label":511,"file":439,"line":533,"wp_function":512},"n3",{"id":537,"type":485,"label":538,"file":439,"line":539},"n4","$_POST['pickuptime']",14,{"id":541,"type":489,"label":511,"file":439,"line":539,"wp_function":512},"n5",{"id":543,"type":485,"label":544,"file":439,"line":545},"n6","$_POST['dropoffdate']",15,{"id":547,"type":489,"label":511,"file":439,"line":545,"wp_function":512},"n7",{"id":549,"type":485,"label":550,"file":439,"line":112},"n8","$_POST['dropofftime']",{"id":552,"type":489,"label":511,"file":439,"line":112,"wp_function":512},"n9",{"id":554,"type":485,"label":555,"file":439,"line":475},"n10","$_POST['picklocation']",{"id":557,"type":489,"label":511,"file":439,"line":475,"wp_function":512},"n11",{"id":559,"type":485,"label":560,"file":439,"line":561},"n12","$_POST['dropoff_loc']",18,{"id":563,"type":489,"label":511,"file":439,"line":561,"wp_function":512},"n13",{"id":565,"type":485,"label":566,"file":439,"line":567},"n14","$_POST['promo']",19,{"id":569,"type":489,"label":511,"file":439,"line":567,"wp_function":512},"n15",[571,572,573,574,575,576,577,578],{"from":484,"to":488,"sanitized":152},{"from":531,"to":535,"sanitized":152},{"from":537,"to":541,"sanitized":152},{"from":543,"to":547,"sanitized":152},{"from":549,"to":552,"sanitized":152},{"from":554,"to":557,"sanitized":152},{"from":559,"to":563,"sanitized":152},{"from":565,"to":569,"sanitized":152},{"entryPoint":580,"graph":581,"unsanitizedCount":13,"severity":495},"\u003Cmis-charges> (templates\\mis-charges.php:0)",{"nodes":582,"edges":604},[583,585,586,589,590,592,593,595,596,599,600,603],{"id":484,"type":485,"label":584,"file":445,"line":33},"$_REQUEST['vehicle']",{"id":488,"type":489,"label":511,"file":445,"line":33,"wp_function":512},{"id":531,"type":485,"label":587,"file":445,"line":588},"$_REQUEST['loc']",31,{"id":535,"type":489,"label":511,"file":445,"line":588,"wp_function":512},{"id":537,"type":485,"label":591,"file":445,"line":227},"$_REQUEST['pick']",{"id":541,"type":489,"label":511,"file":445,"line":227,"wp_function":512},{"id":543,"type":485,"label":594,"file":445,"line":240},"$_REQUEST['drop']",{"id":547,"type":489,"label":511,"file":445,"line":240,"wp_function":512},{"id":549,"type":485,"label":597,"file":445,"line":598},"$_REQUEST['rateid']",34,{"id":552,"type":489,"label":511,"file":445,"line":598,"wp_function":512},{"id":554,"type":485,"label":601,"file":445,"line":602},"$_REQUEST['vehicleTypeId']",35,{"id":557,"type":489,"label":511,"file":445,"line":602,"wp_function":512},[605,606,607,608,609,610],{"from":484,"to":488,"sanitized":152},{"from":531,"to":535,"sanitized":152},{"from":537,"to":541,"sanitized":152},{"from":543,"to":547,"sanitized":152},{"from":549,"to":552,"sanitized":152},{"from":554,"to":557,"sanitized":152},{"entryPoint":612,"graph":613,"unsanitizedCount":13,"severity":495},"\u003Csummary> (templates\\summary.php:0)",{"nodes":614,"edges":621},[615,617,618,620],{"id":484,"type":485,"label":591,"file":448,"line":616},561,{"id":488,"type":489,"label":511,"file":448,"line":616,"wp_function":512},{"id":531,"type":485,"label":594,"file":448,"line":619},562,{"id":535,"type":489,"label":511,"file":448,"line":619,"wp_function":512},[622,623],{"from":484,"to":488,"sanitized":152},{"from":531,"to":535,"sanitized":152},{"entryPoint":625,"graph":626,"unsanitizedCount":32,"severity":495},"\u003Cterm-condition> (templates\\term-condition.php:0)",{"nodes":627,"edges":630},[628,629],{"id":484,"type":485,"label":486,"file":469,"line":45},{"id":488,"type":489,"label":511,"file":469,"line":279,"wp_function":512},[631],{"from":484,"to":488,"sanitized":153},{"entryPoint":633,"graph":634,"unsanitizedCount":65,"severity":648},"NTRAreservationLogin (include\\login.php:5)",{"nodes":635,"edges":645},[636,638,641],{"id":484,"type":485,"label":637,"file":97,"line":202},"$_POST (x3)",{"id":488,"type":639,"label":640,"file":97,"line":202},"transform","→ NTRAforUpdate()",{"id":531,"type":489,"label":642,"file":97,"line":643,"wp_function":644},"query() [SQLi]",92,"query",[646,647],{"from":484,"to":488,"sanitized":153},{"from":488,"to":531,"sanitized":153},"high",{"entryPoint":650,"graph":651,"unsanitizedCount":65,"severity":648},"\u003Clogin> (include\\login.php:0)",{"nodes":652,"edges":658},[653,654,655,656,657],{"id":484,"type":485,"label":637,"file":97,"line":45},{"id":488,"type":489,"label":642,"file":97,"line":643,"wp_function":644},{"id":531,"type":485,"label":637,"file":97,"line":202},{"id":535,"type":639,"label":640,"file":97,"line":202},{"id":537,"type":489,"label":642,"file":97,"line":643,"wp_function":644},[659,660,661],{"from":484,"to":488,"sanitized":152},{"from":531,"to":535,"sanitized":153},{"from":535,"to":537,"sanitized":153},{"summary":663,"deductions":664},"The \"reservation\" v1.0 plugin presents a mixed security posture. On the positive side, the plugin demonstrates good security practices by utilizing prepared statements for all SQL queries and implementing nonces and capability checks on a significant number of entry points. The absence of known CVEs and historically unpatched vulnerabilities is also a strong indicator of diligent security development and maintenance. However, the static analysis reveals some areas of concern that warrant attention.\n\nThe taint analysis flags two high-severity flows with unsanitized paths. While these are not classified as critical, unsanitized paths can lead to various vulnerabilities if user-controlled input is not properly validated or escaped before being used in sensitive operations. The plugin also exhibits a relatively high rate of unescaped output at 19%, which could expose users to Cross-Site Scripting (XSS) vulnerabilities if certain output is rendered without proper sanitization.\n\nIn conclusion, while the plugin has a solid foundation with respect to SQL injection prevention and access control for its entry points, the identified high-severity taint flows and the proportion of unescaped output represent potential risks. Addressing these specific findings is crucial for improving the plugin's overall security and mitigating potential exploitation.",[665,667],{"reason":666,"points":545},"High severity unsanitized paths in taint analysis",{"reason":668,"points":189},"Unescaped output (19%)","2026-03-17T05:38:00.133Z",{"wat":671,"direct":688},{"assetPaths":672,"generatorPatterns":681,"scriptPaths":682,"versionParams":685},[673,674,675,676,677,678,679,680],"\u002Fwp-content\u002Fplugins\u002Freservation\u002Fcss\u002Ffont.css","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fcss\u002Fjquery.datetimepicker.min.css","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fjs\u002Fajax.js","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fjs\u002Fdatepick.js","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fjs\u002Fjquery.datetimepicker.js","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fcss\u002Fadminstyle.css","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fjs\u002Fmy-script.js","\u002Fwp-content\u002Fplugins\u002Freservation\u002Fjs\u002FnicEdit.js",[],[683,684],"site_url","plugin_url",[686,687],"adminstyle.css?ver=","my-script.js?ver=",{"cssClasses":689,"htmlComments":695,"htmlAttributes":700,"restEndpoints":703,"jsGlobals":704,"shortcodeOutput":706},[690,691,692,693,694],"navotar","col-md-5","checkbox","btn","btn-default",[696,697,698,699],"\u003C!-- START NAVOTAR MAIN CONTENT-->","\u003C!-- START NAVOTAR CAR RENTAL RESERVATION FORM -->","\u003C!-- END NAVOTAR CAR RENTAL RESERVATION FORM -->","\u003C!-- END NAVOTAR MAIN CONTENT-->",[701,702],"data-toggle","data-target",[],[683,684,705],"MS_Ajax",[707,708,709,710,711,712],"\u003Cdiv class=\"navotar\">","\u003Cdiv id=\"error10\"","\u003Cdiv class=\"nicEdit-panel","\u003Cdiv id=\"nicEdit_reserver_content\"","\u003Cdiv class=\"nicEdit-main\"","\u003Cdiv id=\"nicEdit_terms_content\""]